Samba4 OpenLDAP backend

Andrew Bartlett abartlet at samba.org
Mon Apr 26 06:29:57 MDT 2010 

On Mon, 2010-04-26 at 12:34 +0530, nitin bhadauria wrote:
> As you said now i am using Openldap from CVS and i end up with error..
> 
> /usr/local/bin/python setup/provision --realm=SAMBA.DOMAIN.COM
> --domain=domain.com --adminpass=passw0rd --ldap-backend-type=openldap
> --slapd-path="/usr/local/libexec/slapd" --server-role='domain
> controller'
> config file testing succeeded
> Failed to bind - LDAP client internal error:
> NT_STATUS_UNEXPECTED_NETWORK_ERROR
> Failed to connect to 'ldapi://%2Fusr%2Flocal%2Fsamba%2Fprivate%2Fldap%
> 2Fldapi'
> Setting up share.ldb
> Setting up secrets.ldb
> Setting up the registry
> Setting up the privileges database
> Setting up idmap db
> Setting up SAM db
> Setting up sam.ldb partitions and settings
> Setting up sam.ldb rootDSE
> Pre-loading the Samba 4 and AD schema
> Adding DomainDN: DC=samba,DC=domain,DC=com
> pdc_fsmo_init: no domain object present: (skip loading of domain
> details)
> 
> Traceback (most recent call last):
>   File "setup/provision", line 249, in <module>
> 
> nosync=opts.nosync,ldap_dryrun_mode=opts.ldap_dryrun_mode,useeadb=eadb)
>   File "bin/python/samba/provision.py", line 1327, in provision
>     dom_for_fun_level=dom_for_fun_level)
>   File "bin/python/samba/provision.py", line 919, in setup_samdb
>     "DESCRIPTOR": descr
>   File "bin/python/samba/provision.py", line 242, in setup_add_ldif
>     ldb.add_ldif(data, controls)
>   File "bin/python/samba/__init__.py", line 251, in add_ldif
>     self.add(msg,controls)
> _ldb.LdbError: (8, 'LDAP error 8 LDAP_STRONG_AUTH_REQUIRED -
> <modifications require authentication> <>')
> A transaction is still active in ldb context [0xa721748]
> on /usr/local/samba/private/secrets.ldb
> 

That's very odd.  Did you somehow compile OpenLDAP on a system without
SASL support?  I've not see that error before.

Andrew Bartlett

-- 
Andrew Bartlett                                http://samba.org/~abartlet/
Authentication Developer, Samba Team           http://samba.org
Samba Developer, Cisco Inc.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 190 bytes
Desc: This is a digitally signed message part
URL: <http://lists.samba.org/pipermail/samba-technical/attachments/20100426/b84f7295/attachment.pgp>

More information about the samba-technical mailing list